Remove network datasource and make subnetwork conditional on firewall

Signed-off-by: Dev <Dev25@users.noreply.github.com>

autogen/main/main.tf.tmpl

@@ -77,8 +77,8 @@ locals {
   // auto upgrade by defaults only for regional cluster as long it has multiple masters versus zonal clusters have only have a single master so upgrades are more dangerous.
   default_auto_upgrade = var.regional ? true : false
 
-  cluster_subnet_cidr       = data.google_compute_subnetwork.gke_subnetwork.ip_cidr_range
-  cluster_alias_ranges_cidr = { for range in toset(data.google_compute_subnetwork.gke_subnetwork.secondary_ip_range) : range.range_name => range.ip_cidr_range }
+  cluster_subnet_cidr       = data.google_compute_subnetwork.gke_subnetwork.*.ip_cidr_range
+  cluster_alias_ranges_cidr = { for range in toset(data.google_compute_subnetwork.gke_subnetwork.*.secondary_ip_range) : range.range_name => range.ip_cidr_range }
 
   cluster_network_policy = var.network_policy ? [{
     enabled  = true

autogen/main/networks.tf

@@ -16,16 +16,10 @@
 
 {{ autogeneration_note }}
 
-data "google_compute_network" "gke_network" {
-  provider = google
-
-  name    = var.network
-  project = local.network_project_id
-}
-
 data "google_compute_subnetwork" "gke_subnetwork" {
   provider = google
 
+  count   = var.add_cluster_firewall_rules ? 1 : 0
   name    = var.subnetwork
   region  = local.region
   project = local.network_project_id

main.tf

@@ -59,8 +59,8 @@ locals {
   // auto upgrade by defaults only for regional cluster as long it has multiple masters versus zonal clusters have only have a single master so upgrades are more dangerous.
   default_auto_upgrade = var.regional ? true : false
 
-  cluster_subnet_cidr       = data.google_compute_subnetwork.gke_subnetwork.ip_cidr_range
-  cluster_alias_ranges_cidr = { for range in toset(data.google_compute_subnetwork.gke_subnetwork.secondary_ip_range) : range.range_name => range.ip_cidr_range }
+  cluster_subnet_cidr       = data.google_compute_subnetwork.gke_subnetwork.*.ip_cidr_range
+  cluster_alias_ranges_cidr = { for range in toset(data.google_compute_subnetwork.gke_subnetwork.*.secondary_ip_range) : range.range_name => range.ip_cidr_range }
 
   cluster_network_policy = var.network_policy ? [{
     enabled  = true

modules/beta-private-cluster-update-variant/main.tf

@@ -71,8 +71,8 @@ locals {
   // auto upgrade by defaults only for regional cluster as long it has multiple masters versus zonal clusters have only have a single master so upgrades are more dangerous.
   default_auto_upgrade = var.regional ? true : false
 
-  cluster_subnet_cidr       = data.google_compute_subnetwork.gke_subnetwork.ip_cidr_range
-  cluster_alias_ranges_cidr = { for range in toset(data.google_compute_subnetwork.gke_subnetwork.secondary_ip_range) : range.range_name => range.ip_cidr_range }
+  cluster_subnet_cidr       = data.google_compute_subnetwork.gke_subnetwork.*.ip_cidr_range
+  cluster_alias_ranges_cidr = { for range in toset(data.google_compute_subnetwork.gke_subnetwork.*.secondary_ip_range) : range.range_name => range.ip_cidr_range }
 
   cluster_network_policy = var.network_policy ? [{
     enabled  = true

modules/beta-private-cluster-update-variant/networks.tf

@@ -16,16 +16,10 @@
 
 // This file was automatically generated from a template in ./autogen/main
 
-data "google_compute_network" "gke_network" {
-  provider = google
-
-  name    = var.network
-  project = local.network_project_id
-}
-
 data "google_compute_subnetwork" "gke_subnetwork" {
   provider = google
 
+  count   = var.add_cluster_firewall_rules ? 1 : 0
   name    = var.subnetwork
   region  = local.region
   project = local.network_project_id

modules/beta-private-cluster/main.tf

@@ -71,8 +71,8 @@ locals {
   // auto upgrade by defaults only for regional cluster as long it has multiple masters versus zonal clusters have only have a single master so upgrades are more dangerous.
   default_auto_upgrade = var.regional ? true : false
 
-  cluster_subnet_cidr       = data.google_compute_subnetwork.gke_subnetwork.ip_cidr_range
-  cluster_alias_ranges_cidr = { for range in toset(data.google_compute_subnetwork.gke_subnetwork.secondary_ip_range) : range.range_name => range.ip_cidr_range }
+  cluster_subnet_cidr       = data.google_compute_subnetwork.gke_subnetwork.*.ip_cidr_range
+  cluster_alias_ranges_cidr = { for range in toset(data.google_compute_subnetwork.gke_subnetwork.*.secondary_ip_range) : range.range_name => range.ip_cidr_range }
 
   cluster_network_policy = var.network_policy ? [{
     enabled  = true

modules/beta-private-cluster/networks.tf

@@ -16,16 +16,10 @@
 
 // This file was automatically generated from a template in ./autogen/main
 
-data "google_compute_network" "gke_network" {
-  provider = google
-
-  name    = var.network
-  project = local.network_project_id
-}
-
 data "google_compute_subnetwork" "gke_subnetwork" {
   provider = google
 
+  count   = var.add_cluster_firewall_rules ? 1 : 0
   name    = var.subnetwork
   region  = local.region
   project = local.network_project_id

modules/beta-public-cluster/main.tf

@@ -71,8 +71,8 @@ locals {
   // auto upgrade by defaults only for regional cluster as long it has multiple masters versus zonal clusters have only have a single master so upgrades are more dangerous.
   default_auto_upgrade = var.regional ? true : false
 
-  cluster_subnet_cidr       = data.google_compute_subnetwork.gke_subnetwork.ip_cidr_range
-  cluster_alias_ranges_cidr = { for range in toset(data.google_compute_subnetwork.gke_subnetwork.secondary_ip_range) : range.range_name => range.ip_cidr_range }
+  cluster_subnet_cidr       = data.google_compute_subnetwork.gke_subnetwork.*.ip_cidr_range
+  cluster_alias_ranges_cidr = { for range in toset(data.google_compute_subnetwork.gke_subnetwork.*.secondary_ip_range) : range.range_name => range.ip_cidr_range }
 
   cluster_network_policy = var.network_policy ? [{
     enabled  = true

modules/beta-public-cluster/networks.tf

@@ -16,16 +16,10 @@
 
 // This file was automatically generated from a template in ./autogen/main
 
-data "google_compute_network" "gke_network" {
-  provider = google
-
-  name    = var.network
-  project = local.network_project_id
-}
-
 data "google_compute_subnetwork" "gke_subnetwork" {
   provider = google
 
+  count   = var.add_cluster_firewall_rules ? 1 : 0
   name    = var.subnetwork
   region  = local.region
   project = local.network_project_id

modules/private-cluster-update-variant/main.tf

@@ -59,8 +59,8 @@ locals {
   // auto upgrade by defaults only for regional cluster as long it has multiple masters versus zonal clusters have only have a single master so upgrades are more dangerous.
   default_auto_upgrade = var.regional ? true : false
 
-  cluster_subnet_cidr       = data.google_compute_subnetwork.gke_subnetwork.ip_cidr_range
-  cluster_alias_ranges_cidr = { for range in toset(data.google_compute_subnetwork.gke_subnetwork.secondary_ip_range) : range.range_name => range.ip_cidr_range }
+  cluster_subnet_cidr       = data.google_compute_subnetwork.gke_subnetwork.*.ip_cidr_range
+  cluster_alias_ranges_cidr = { for range in toset(data.google_compute_subnetwork.gke_subnetwork.*.secondary_ip_range) : range.range_name => range.ip_cidr_range }
 
   cluster_network_policy = var.network_policy ? [{
     enabled  = true

modules/private-cluster-update-variant/networks.tf

@@ -16,16 +16,10 @@
 
 // This file was automatically generated from a template in ./autogen/main
 
-data "google_compute_network" "gke_network" {
-  provider = google
-
-  name    = var.network
-  project = local.network_project_id
-}
-
 data "google_compute_subnetwork" "gke_subnetwork" {
   provider = google
 
+  count   = var.add_cluster_firewall_rules ? 1 : 0
   name    = var.subnetwork
   region  = local.region
   project = local.network_project_id

modules/private-cluster/main.tf

@@ -59,8 +59,8 @@ locals {
   // auto upgrade by defaults only for regional cluster as long it has multiple masters versus zonal clusters have only have a single master so upgrades are more dangerous.
   default_auto_upgrade = var.regional ? true : false
 
-  cluster_subnet_cidr       = data.google_compute_subnetwork.gke_subnetwork.ip_cidr_range
-  cluster_alias_ranges_cidr = { for range in toset(data.google_compute_subnetwork.gke_subnetwork.secondary_ip_range) : range.range_name => range.ip_cidr_range }
+  cluster_subnet_cidr       = data.google_compute_subnetwork.gke_subnetwork.*.ip_cidr_range
+  cluster_alias_ranges_cidr = { for range in toset(data.google_compute_subnetwork.gke_subnetwork.*.secondary_ip_range) : range.range_name => range.ip_cidr_range }
 
   cluster_network_policy = var.network_policy ? [{
     enabled  = true

modules/private-cluster/networks.tf

@@ -16,16 +16,10 @@
 
 // This file was automatically generated from a template in ./autogen/main
 
-data "google_compute_network" "gke_network" {
-  provider = google
-
-  name    = var.network
-  project = local.network_project_id
-}
-
 data "google_compute_subnetwork" "gke_subnetwork" {
   provider = google
 
+  count   = var.add_cluster_firewall_rules ? 1 : 0
   name    = var.subnetwork
   region  = local.region
   project = local.network_project_id

networks.tf

@@ -16,16 +16,10 @@
 
 // This file was automatically generated from a template in ./autogen/main
 
-data "google_compute_network" "gke_network" {
-  provider = google
-
-  name    = var.network
-  project = local.network_project_id
-}
-
 data "google_compute_subnetwork" "gke_subnetwork" {
   provider = google
 
+  count   = var.add_cluster_firewall_rules ? 1 : 0
   name    = var.subnetwork
   region  = local.region
   project = local.network_project_id